Stunnel is a wrapper for network connections. It can be used totunnel an unencrypted network connection over a secure connection(encrypted using SSL or TLS) or to provide a secure means ofconnecting to services that do not natively support encryption.

This update fixes two vulnerabilities that affect stunnel versionsshipped with Conectiva Linux:

1. SIGCHLD Denial of Service (CVE-2002-1563)[1]Henrik Eriksson found[2] a race in the code that handles the SIGCHLDsignal. This vulnerability affects stunnel when configured to listenfor incoming connections (instead of being invoked by inetd) and tostart a new child process to handle each new connection. A remoteattacker can exploit this vulnerability to bring the tunneled servicedown.